Lucene search
Redhat.comRH:CVE-2018-18064HistoryApr 02, 2020 - 8:41 a.m.
CVE-2018-18064
2020-04-0208:41:41
redhat.com
access.redhat.com
14
0.002 Low
EPSS
Percentile
55.6%
cairo through 1.15.14 has an out-of-bounds stack-memory write during processing of a crafted document by WebKitGTK+ because of the interaction between cairo-rectangular-scan-converter.c (the generate and render_rows functions) and cairo-image-compositor.c (the _cairo_image_spans_and_zero function).
Mitigation
Attackers can use specially-crafted files to trigger this stack-buffer overflow in cairo. Applications compiled with cairo, which do not parse untrusted 2D image files are not vulnerable to this flaw. cairo package in Red Hat Enterprise Linux 7 and 8 is compiled with gcc's Stack Smashing Protection, which may reduce the impact of this flaw to crash only.
Related
rosalinux
rosalinux
Advisory ROSA-SA-2021-1810
2021-07-02 16:34:38
nvd
nvd
CVE-2018-18064
2018-10-08 18:29:00
osv
osv
CVE-2018-18064
2018-10-08 18:29:00
cve
cve
CVE-2018-18064
2018-10-08 18:29:00
prion
prion
Out-of-bounds
2018-10-08 18:29:00
cvelist
cvelist
CVE-2018-18064
2018-10-08 18:00:00
ubuntucve
ubuntucve
CVE-2018-18064
2018-10-08 00:00:00
debiancve
debiancve
CVE-2018-18064
2018-10-08 18:29:00
nessus
nessus
RHEL 8 : cairo (Unpatched Vulnerability)
2024-05-11 00:00:00
Photon OS 1.0: Cairo PHSA-2019-1.0-0220
2019-05-15 00:00:00
RHEL 6 : cairo (Unpatched Vulnerability)
2024-06-03 00:00:00
photon
photon
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2019-2.0-0145
2019-03-28 00:00:00
Moderate Photon OS Security Update - PHSA-2019-0145
2019-03-28 00:00:00
Important Photon OS Security Update - PHSA-2019-0008
2019-03-29 00:00:00